Short and sweet: a Firefox extension that exposes the fact that login cookies are transacted unencrypted for a lot of the biggest social networking sites — meaning that you can sit on an open wi-fi network and harvest all the authentication data you like (known as a sidejacking attack): Firesheep.